$ rpki-client -vvf rpki.apnic.net/member_repository/A91149E6/3246FE6EED4811ECB5DE1082C4F9AE02/gVvw7iCl3LowV8PTW1jsFHcuj-8.mft File: gVvw7iCl3LowV8PTW1jsFHcuj-8.mft (raw, json) Hash identifier: bQyEAMNAcE7ZUgE1zBPV9kypUVQss9W186XsvBp4RM4= Subject key identifier: 8C:39:C1:E6:BB:D3:96:3A:A6:ED:85:81:0A:82:BD:F7:CD:57:3B:26 Authority key identifier: 81:5B:F0:EE:20:A5:DC:BA:30:57:C3:D3:5B:58:EC:14:77:2E:8F:EF Certificate issuer: /CN=A91149E6/serialNumber=815BF0EE20A5DCBA3057C3D35B58EC14772E8FEF Certificate serial: 02C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gVvw7iCl3LowV8PTW1jsFHcuj-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91149E6/3246FE6EED4811ECB5DE1082C4F9AE02/gVvw7iCl3LowV8PTW1jsFHcuj-8.mft Manifest number: 02C1 Signing time: Tue 13 May 2025 01:12:43 +0000 Manifest this update: Tue 13 May 2025 01:12:42 +0000 Manifest next update: Tue 20 May 2025 01:12:42 +0000 Files and hashes: 1: gVvw7iCl3LowV8PTW1jsFHcuj-8.crl (hash: F++n5egxdooyTCOSkFPmoFqT8ugFmrYD83BaAUzApco=) 2: 54FEFAA2ED4C11EC821F3D84C4F9AE02.roa (hash: rj+UC+zA9sE5Q8EazPPN8LHfCTVfMALfkukIKXKN97M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91149E6/3246FE6EED4811ECB5DE1082C4F9AE02/gVvw7iCl3LowV8PTW1jsFHcuj-8.crl rsync://rpki.apnic.net/member_repository/A91149E6/3246FE6EED4811ECB5DE1082C4F9AE02/gVvw7iCl3LowV8PTW1jsFHcuj-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gVvw7iCl3LowV8PTW1jsFHcuj-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 01:12:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 708 (0x2c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91149E6, serialNumber=815BF0EE20A5DCBA3057C3D35B58EC14772E8FEF Validity Not Before: May 13 01:12:42 2025 GMT Not After : May 20 01:12:42 2025 GMT Subject: CN=68229c8b-0376 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:97:34:84:35:79:d7:5e:06:82:85:4d:e6:05: 6e:ad:ab:2a:f7:33:d1:23:19:c4:8b:af:30:de:e5: 26:7b:d2:09:60:5f:4c:8f:32:a7:d8:d9:47:3e:79: b4:c0:f4:f4:6c:9c:95:cd:a6:49:72:73:4d:82:02: 1c:ba:ed:95:9d:a7:50:95:c3:4a:9a:04:13:fe:3e: 2a:a7:98:22:14:42:bc:e8:a4:45:56:24:66:16:6f: 04:59:b0:87:78:86:d7:47:62:54:81:f9:76:a9:d6: a7:9e:29:e6:b3:b7:a0:6e:0c:4b:83:13:fe:4e:2b: a5:b8:3b:45:b3:f8:27:12:88:96:6d:4b:2e:b6:ed: 01:9c:ea:12:88:9c:8d:a5:fb:83:96:c6:ac:a4:f1: 29:89:da:ac:1f:d8:9b:31:38:6d:8e:81:bf:13:bd: 29:71:4e:9e:e9:c1:a3:50:b3:c8:7d:b6:c2:d4:47: 9d:c3:a2:b1:da:d7:e4:27:a9:ae:5e:6a:6a:a4:08: f3:6e:c1:8b:de:64:88:ea:4a:4f:a2:23:f8:e9:30: a4:05:eb:e7:af:88:da:92:1f:c7:1a:a8:a5:41:31: 97:09:5e:75:69:d4:95:2d:2d:e7:b1:65:f8:75:82: 04:38:49:3c:91:87:8f:8f:4b:21:76:dc:03:bf:51: 65:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:39:C1:E6:BB:D3:96:3A:A6:ED:85:81:0A:82:BD:F7:CD:57:3B:26 X509v3 Authority Key Identifier: keyid:81:5B:F0:EE:20:A5:DC:BA:30:57:C3:D3:5B:58:EC:14:77:2E:8F:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91149E6/3246FE6EED4811ECB5DE1082C4F9AE02/gVvw7iCl3LowV8PTW1jsFHcuj-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gVvw7iCl3LowV8PTW1jsFHcuj-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91149E6/3246FE6EED4811ECB5DE1082C4F9AE02/gVvw7iCl3LowV8PTW1jsFHcuj-8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:3b:88:89:01:b7:5b:5a:9d:46:73:08:e5:af:07:0b:69:d2: 3f:02:44:81:75:d0:51:8a:0e:4d:7f:2f:f4:37:e1:67:43:50: af:8e:48:38:e8:85:5d:74:dd:e9:ba:d2:0d:66:f4:95:4b:f5: 72:93:5d:b6:b4:a8:eb:83:42:56:74:99:6b:39:64:73:76:c9: 50:0c:db:f5:f3:83:de:eb:f3:b4:45:9a:c0:18:3c:06:18:7b: bd:3c:65:95:bc:8c:f0:61:f9:94:99:99:37:71:80:27:77:a9: 58:65:1e:f2:2c:2e:7c:ba:08:bf:7c:da:be:61:cc:e4:59:4a: 15:ba:bb:41:85:89:2a:86:36:f0:dd:72:3f:bf:ac:45:64:0a: ec:ed:00:50:47:d6:13:63:36:86:bc:cb:cf:93:63:d1:f6:dd: b7:a3:ea:2f:43:4f:74:39:4b:77:3a:3e:69:bc:d9:2d:d4:e2: 77:bf:78:cf:25:b1:00:be:cb:20:a6:9b:57:71:f1:38:f5:32: 04:67:c7:6b:c1:2f:f8:b0:12:a5:9e:0e:f8:be:55:9b:99:82: 07:0e:ac:2f:ba:7e:85:12:48:ff:c5:78:aa:4b:6a:7b:fb:5a: 0a:8f:7d:44:16:e9:55:4b:a6:e0:7c:c5:5a:71:3d:94:71:d9: d1:71:e6:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTQ5RTYxMTAvBgNVBAUTKDgxNUJGMEVFMjBBNURDQkEzMDU3QzNEMzVCNThFQzE0 NzcyRThGRUYwHhcNMjUwNTEzMDExMjQyWhcNMjUwNTIwMDExMjQyWjAYMRYwFAYD VQQDEw02ODIyOWM4Yi0wMzc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2pc0hDV5114GgoVN5gVurasq9zPRIxnEi68w3uUme9IJYF9MjzKn2NlHPnm0 wPT0bJyVzaZJcnNNggIcuu2VnadQlcNKmgQT/j4qp5giFEK86KRFViRmFm8EWbCH eIbXR2JUgfl2qdanninms7egbgxLgxP+TiuluDtFs/gnEoiWbUsutu0BnOoSiJyN pfuDlsaspPEpidqsH9ibMThtjoG/E70pcU6e6cGjULPIfbbC1Eedw6Kx2tfkJ6mu XmpqpAjzbsGL3mSI6kpPoiP46TCkBevnr4jakh/HGqilQTGXCV51adSVLS3nsWX4 dYIEOEk8kYePj0shdtwDv1FloQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIw5wea7 05Y6pu2FgQqCvffNVzsmMB8GA1UdIwQYMBaAFIFb8O4gpdy6MFfD01tY7BR3Lo/v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNDlFNi8zMjQ2RkU2RUVE NDgxMUVDQjVERTEwODJDNEY5QUUwMi9nVnZ3N2lDbDNMb3dWOFBUVzFqc0ZIY3Vq LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dWdnc3aUNsM0xvd1Y4UFRXMWpzRkhjdWotOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NDlFNi8zMjQ2RkU2RUVENDgxMUVDQjVERTEwODJDNEY5QUUwMi9nVnZ3N2lDbDNM b3dWOFBUVzFqc0ZIY3VqLTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjO4iJAbdbWp1GcwjlrwcLadI/AkSBddBRig5Nfy/0N+FnQ1Cvjkg4 6IVddN3putINZvSVS/Vyk122tKjrg0JWdJlrOWRzdslQDNv184Pe6/O0RZrAGDwG GHu9PGWVvIzwYfmUmZk3cYAnd6lYZR7yLC58ugi/fNq+YczkWUoVurtBhYkqhjbw 3XI/v6xFZArs7QBQR9YTYzaGvMvPk2PR9t23o+ovQ090OUt3Oj5pvNkt1OJ3v3jP JbEAvssgpptXcfE49TIEZ8drwS/4sBKlng74vlWbmYIHDqwvun6FEkj/xXiqS2p7 +1oKj31EFulVS6bgfMVacT2UcdnRcebp -----END CERTIFICATE-----Generated at Wed May 14 04:14:17 2025 by rpki-client